GeneralInformation

Hostnames	megahirtz.run jellyfin.megahirtz.run
Domains	megahirtz.run
Cloud Provider	Linode
Cloud Region	us-tx
Country	United States
City	Richardson
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

WebTechnologies

JavaScript libraries

jQuery

Lodash

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(1)

CVE-2025-26466

5.9A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to an uncontrolled increase in memory consumption on the server side. Consequently, the server may become unavailable, resulting in a denial of service attack.

OpenPorts

22 80 443 1935

22 / tcp

-2052098126 | 2025-03-22T16:18:52.353013

SSH-2.0-OpenSSH_9.8
Key type: ssh-ed25519
Key: AAAAC3NzaC1lZDI1NTE5AAAAIKYoBBACBx5I5X5ewXpQkYN5vwhw9uETL+h3V1WTKtEN
Fingerprint: 7f:2d:5f:1a:59:95:5e:06:91:98:7e:29:35:01:55:fa

Kex Algorithms:
	sntrup761x25519-sha512@openssh.com
	curve25519-sha256
	curve25519-sha256@libssh.org
	diffie-hellman-group-exchange-sha256
	ext-info-s
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes256-gcm@openssh.com
	aes128-gcm@openssh.com
	aes256-ctr
	aes192-ctr
	aes128-ctr

MAC Algorithms:
	hmac-sha2-512-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	umac-128-etm@openssh.com

Compression Algorithms:
	none
	zlib@openssh.com

Vulnerabilities

80 / tcp

-2100514759 | 2025-03-14T02:34:18.764818

Hashes

hash

-1904987164

http.dom_hash

1239617585

http.html_hash

-2100514759

http.server_hash

-1340961475

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 14 Mar 2025 02:34:18 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://45.79.41.27/

443 / tcp

888410049 | 2025-03-21T21:54:59.427839

Hashes

hash

347294975

http.dom_hash

-1296177726

http.favicon.hash

-2069226242

http.html_hash

888410049

http.server_hash

-1340961475

http.title_hash

-1242811271

Jellyfin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 21 Mar 2025 21:54:55 GMT
Content-Type: text/html
Content-Length: 9970
Connection: keep-alive
Vary: Accept-Encoding
Accept-Ranges: bytes
ETag: "19db1ded5d73072"
Last-Modified: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
X-Response-Time-ms: 0.2562


nixos:
  Version: 10.9.11
  OS: 
  Local Address: http://45.79.41.27:8096

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:4f:7f:7f:32:4b:49:30:b0:1e:76:11:f0:35:2b:03:03:e3
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Jan 26 21:40:16 2025 GMT
            Not After : Apr 26 21:40:15 2025 GMT
        Subject: CN=jellyfin.megahirtz.run
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:c9:71:a6:0a:20:37:4a:9c:99:e6:3c:6f:17:93:
                    fe:b5:ef:99:e5:f5:08:99:0a:5f:b3:c6:89:f4:4f:
                    25:67:b6:a1:aa:9f:83:20:cd:d3:82:54:53:21:a3:
                    5a:7a:68:cf:d9:9b:c3:ee:c9:c8:77:84:2c:d4:eb:
                    c1:6a:80:9b:f4
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8A:A4:E2:6B:52:F6:FF:4C:78:D2:F3:46:52:B3:CE:8B:3D:08:3A:9D
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:jellyfin.megahirtz.run
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DE:85:81:D7:50:24:7C:6B:CD:CB:AF:56:37:C5:E7:81:
                                C6:4C:E4:6E:D6:17:63:9F:8F:34:A7:26:C9:E2:BD:37
                    Timestamp : Jan 26 22:38:46.643 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C8:BF:4E:47:88:BD:82:A1:40:4B:DB:
                                44:C3:9D:13:9C:9F:AF:3E:4F:08:84:7D:52:7A:0F:CE:
                                40:F7:E4:AE:E7:02:20:2A:84:C1:B6:88:FD:BE:DD:03:
                                92:A2:F1:B2:B9:74:D1:AA:D2:DD:9F:AB:0A:8C:61:0F:
                                D2:F0:41:F0:66:F0:D5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Jan 26 22:38:46.697 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:12:DA:AF:40:76:59:5A:91:69:50:71:CF:
                                29:61:83:BE:FE:AB:DE:DE:57:CF:09:B2:6A:F9:84:5B:
                                67:27:75:D1:02:21:00:C2:CE:52:71:6C:84:C5:70:C6:
                                30:12:2E:AB:F9:03:3C:34:C4:24:74:79:8B:3B:97:90:
                                AB:F7:C9:4C:FF:27:7A
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:66:02:31:00:e7:1f:54:7a:21:4d:c4:69:e0:da:5a:ff:72:
        60:0d:24:4d:3d:6f:36:96:65:34:8a:39:7d:29:91:0f:c3:2b:
        49:ad:63:dd:d7:8e:fd:24:da:b9:bf:fe:1b:9e:66:55:b3:02:
        31:00:85:7f:84:d7:cc:aa:6d:be:b6:43:9d:ff:dc:90:64:99:
        43:e4:7b:ef:b9:1a:76:6c:bb:c3:d2:69:b8:2b:2c:57:be:65:
        e2:70:c3:7a:f7:36:a4:8e:a2:34:07:2c:7e:58

1935 / tcp

1549277766 | 2025-03-07T11:59:15.846807

RTMP Server

45.79.41.27

Last Seen: 2025-03-22

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

22 / tcp

-2052098126 | 2025-03-22T16:18:52.353013

OpenSSH9.8

80 / tcp

-2100514759 | 2025-03-14T02:34:18.764818

Hashes

nginx

443 / tcp

888410049 | 2025-03-21T21:54:59.427839

Hashes

Jellyfin10.9.11

1935 / tcp

1549277766 | 2025-03-07T11:59:15.846807

Products

Pricing

Contact Us

45.79.41.27

Last Seen: 2025-03-22

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 22 Latest CVSS

OpenPorts

22 / tcp -2052098126 | 2025-03-22T16:18:52.353013

OpenSSH9.8

80 / tcp -2100514759 | 2025-03-14T02:34:18.764818

Hashes

nginx

443 / tcp 888410049 | 2025-03-21T21:54:59.427839

Hashes

Jellyfin10.9.11

1935 / tcp 1549277766 | 2025-03-07T11:59:15.846807

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-2052098126 | 2025-03-22T16:18:52.353013

80 / tcp

-2100514759 | 2025-03-14T02:34:18.764818

443 / tcp

888410049 | 2025-03-21T21:54:59.427839

1935 / tcp

1549277766 | 2025-03-07T11:59:15.846807